164.52.42.2 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
164.52.42.6	attack	May 24 05:41:23 web01.agentur-b-2.de postfix/smtpd[512662]: NOQUEUE: reject: RCPT from unknown[164.52.42.6]: 554 5.7.1 Service unavailable; Client host [164.52.42.6] blocked using zen.spamhaus.org; https://www.spamhaus.org/sbl/query/SBLCSS / https://www.spamhaus.org/query/ip/164.52.42.6; from= to= proto=ESMTP helo= May 24 05:41:24 web01.agentur-b-2.de postfix/smtpd[512662]: NOQUEUE: reject: RCPT from unknown[164.52.42.6]: 554 5.7.1 Service unavailable; Client host [164.52.42.6] blocked using zen.spamhaus.org; https://www.spamhaus.org/sbl/query/SBLCSS / https://www.spamhaus.org/query/ip/164.52.42.6; from= to= proto=ESMTP helo= May 24 05:41:30 web01.agentur-b-2.de postfix/smtpd[512662]: NOQUEUE: reject: RCPT from unknown[164.52.42.6]: 554 5.7.1 Service unavailable; Client host [164.52.42.6] blocked using zen.spamhaus.org; https://www.spamhaus.org/sbl/query/SBLCSS / https://www.spamhaus.org/query/ip/16	2020-05-24 20:08:10
164.52.42.134	attack	firewall-block, port(s): 1521/tcp	2019-11-21 21:50:49
164.52.42.134	attackbotsspam	11/11/2019-23:43:34.705122 164.52.42.134 Protocol: 6 ET SCAN Suspicious inbound to Oracle SQL port 1521	2019-11-12 07:22:49
164.52.42.6	attackbotsspam	Unauthorized connection attempt from IP address 164.52.42.6 on Port 445(SMB)	2019-10-26 02:11:26

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 164.52.42.2
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 62338
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;164.52.42.2.			IN	A

;; AUTHORITY SECTION:
.			507	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021800 1800 900 604800 86400

;; Query time: 84 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 18 14:46:04 CST 2022
;; MSG SIZE  rcvd: 104

Host info

b'Host 2.42.52.164.in-addr.arpa not found: 2(SERVFAIL)
'

Nslookup info:

server can't find 164.52.42.2.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
202.62.94.57	attack	Unauthorized connection attempt from IP address 202.62.94.57 on Port 445(SMB)	2019-11-20 01:08:53
49.69.173.133	attackspam	Automatic report - Port Scan Attack	2019-11-20 01:32:06
51.77.200.243	attack	Nov 19 13:43:44 Ubuntu-1404-trusty-64-minimal sshd\[20191\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.77.200.243 user=root Nov 19 13:43:46 Ubuntu-1404-trusty-64-minimal sshd\[20191\]: Failed password for root from 51.77.200.243 port 36570 ssh2 Nov 19 14:00:38 Ubuntu-1404-trusty-64-minimal sshd\[20804\]: Invalid user kalerasi from 51.77.200.243 Nov 19 14:00:38 Ubuntu-1404-trusty-64-minimal sshd\[20804\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.77.200.243 Nov 19 14:00:41 Ubuntu-1404-trusty-64-minimal sshd\[20804\]: Failed password for invalid user kalerasi from 51.77.200.243 port 45316 ssh2	2019-11-20 01:18:02
118.24.173.104	attackspambots	Nov 19 14:00:44 [snip] sshd[30103]: Invalid user guest from 118.24.173.104 port 38571 Nov 19 14:00:44 [snip] sshd[30103]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.173.104 Nov 19 14:00:46 [snip] sshd[30103]: Failed password for invalid user guest from 118.24.173.104 port 38571 ssh2[...]	2019-11-20 01:11:21
120.63.23.168	attackbotsspam	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/120.63.23.168/ IN - 1H : (102) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : IN NAME ASN : ASN17813 IP : 120.63.23.168 CIDR : 120.63.0.0/19 PREFIX COUNT : 149 UNIQUE IP COUNT : 1401344 ATTACKS DETECTED ASN17813 : 1H - 1 3H - 1 6H - 1 12H - 3 24H - 9 DateTime : 2019-11-19 14:00:28 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-11-20 01:32:36
13.80.101.116	attackspam	www.villaromeo.de 13.80.101.116 \[19/Nov/2019:14:00:27 +0100\] "POST /wp-login.php HTTP/1.1" 200 2650 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" www.villaromeo.de 13.80.101.116 \[19/Nov/2019:14:00:28 +0100\] "POST /wp-login.php HTTP/1.1" 200 2615 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" www.villaromeo.de 13.80.101.116 \[19/Nov/2019:14:00:28 +0100\] "POST /xmlrpc.php HTTP/1.1" 200 426 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2019-11-20 01:35:01
200.146.249.241	attack	Unauthorized connection attempt from IP address 200.146.249.241 on Port 445(SMB)	2019-11-20 01:15:44
185.156.73.14	attackbots	ET DROP Dshield Block Listed Source group 1 - port: 42670 proto: TCP cat: Misc Attack	2019-11-20 01:17:28
189.126.192.170	attackbotsspam	Unauthorized connection attempt from IP address 189.126.192.170 on Port 445(SMB)	2019-11-20 01:25:10
185.156.73.21	attackspambots	ET DROP Dshield Block Listed Source group 1 - port: 41387 proto: TCP cat: Misc Attack	2019-11-20 01:06:44
122.231.194.184	attackbotsspam	Honeypot hit.	2019-11-20 01:45:00
202.189.3.253	attack	Unauthorized connection attempt from IP address 202.189.3.253 on Port 445(SMB)	2019-11-20 01:28:11
80.211.129.148	attackspambots	2019-11-19T14:03:37.454870abusebot-8.cloudsearch.cf sshd\[30636\]: Invalid user \#\#\#\#\#\# from 80.211.129.148 port 40874	2019-11-20 01:12:37
103.120.252.59	attack	Unauthorized connection attempt from IP address 103.120.252.59 on Port 445(SMB)	2019-11-20 01:45:31
129.211.76.101	attackspam	2019-11-19T18:11:57.443238 sshd[17527]: Invalid user yoyo from 129.211.76.101 port 59740 2019-11-19T18:11:57.458055 sshd[17527]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.76.101 2019-11-19T18:11:57.443238 sshd[17527]: Invalid user yoyo from 129.211.76.101 port 59740 2019-11-19T18:11:59.307432 sshd[17527]: Failed password for invalid user yoyo from 129.211.76.101 port 59740 ssh2 2019-11-19T18:16:11.615851 sshd[17606]: Invalid user zechariah from 129.211.76.101 port 39172 ...	2019-11-20 01:40:49

Recently Reported IPs

164.61.195.99	164.58.136.118	164.52.50.10	164.58.235.130
164.52.28.62	164.64.46.10	164.68.102.73	164.68.101.53
164.68.102.83	164.59.208.14	164.68.103.166	164.68.104.198
164.68.105.158	164.68.106.145	164.68.107.186	164.68.110.196
164.68.108.67	164.68.106.97	164.68.110.142	164.68.112.155